extend user-defined regexp matches

Status: Beta

Brought to you by: josev814, phil_schwartz

#2 extend user-defined regexp matches

Status: open

Owner: nobody

Labels: None

Priority: 5

Updated: 2006-07-19

Created: 2006-07-19

Creator: benou91

Private: No

Hi,

here's a patch which slightly modifies the behaviour of
denyhosts concerning user-defined regexp.
With the patch, the user-defined regexps are *always*
tested if there's no match for built-in regexp, even if
it the log line is not recognized as ssh log line.

It's useful if you want to extend denyhosts
possiblities beyond ssh: I've an installation where my
pop3/pop3s/imap/imaps servers are managed by xinetd.
So, with a well-defined user-regexp, I can block
brute-force attacks on all my servers, even if the
attack is against pop3.

Perhaps It should be done via plugins, eg. a plugin for
sshd, for imapd, etc.
But this is sufficient for me at the moment.

Hope this will help,
Ben

Discussion

benou91 - 2006-07-19

denyhosts-user_regexp.patch

denyhosts-user_regexp.patch

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

extend user-defined regexp matches

Group

Searches

Help

#2 extend user-defined regexp matches

Discussion